NAME
Apache2::AuthZLDAP - Authorization module based on LDAP filters or LDAP groups
VERSION
Version 0.01
SYNOPSIS
This module is an authorization handler for Apache 2. Its authorization method relies on openLDAP filters.
CONFIGURATION
This module can work with all authentification module that provides a valid REMOTE_USER env var. For example :
basic auth
CAS authentication (mod_cas)
Example with CAS authentication :
<VirtualHost 192.168.0.1:80>
## this vars can be initialized out of directory
PerlSetVar LDAPhost myldaphost
PerlSetVar LDAPbaseDN ou=groups,dc=organization,dc=domain
<Directory "/var/www/somewhere">
AuthName CAS
AuthType CAS
## define a filter. [uid] will be replaced by user value on runtime
PerlSetVar LDAPfilter &(member=uid=[uid],ou=people,dc=organization,dc=domain)(cn=admins)
## charging of the module for authZ
PerlAuthzHandler Apache2::AuthZLDAP
require valid-user
</Directory>
</VirtualHost>
Other configuration directives (optional) :
PerlSetVar LDAPTLS (yes|no) ## is the session TLS ? default no
PerlSetVar LDAPCAfile <path> ## see start_tls cafile option in Net::LDAP
PerlSetVar TLSverify (none|optional|require) ## see start_tls verify option in Net::LDAP
PerlSetVar LDAPuser myuser # if user/paswword required to bind
PerlSetVar LDAPpassword mypasswd # id.
PerlSetVar LDAPscope (base|one|sub) # default sub
AUTHOR
Dominique Launay, <dominique.launay AT cru.fr>
BUGS
Please report any bugs or feature requests through the web interface at https://sourcesup.cru.fr/tracker/?func=add&group_id=354&atid=1506 I will be notified, and then you'll automatically be notified of progress on your bug as I make changes.
SUPPORT
You can find documentation for this module with the perldoc command.
perldoc Apache2::AuthZLDAP
ACKNOWLEDGEMENTS
COPYRIGHT & LICENSE
Copyright 2007 Dominique Launay, all rights reserved.
This program is released under the following license: GPL
1 POD Error
The following errors were encountered while parsing the POD:
- Around line 240:
You forgot a '=back' before '=head1'